BSD Commit Log Search

   master site is unreachable

   master site is unreachable and timing out

auto-admin: Update to 0.8.3.11

auto-dreckly-setup: Modernize SunOS package recommendation

   Make sure the keyboard device is actually enabled in DDXRingBell().

   Also use consistent variable names for readability.

   Allocate keyboard and mouse event buffers in the device private structures.

   Also simplify GetEvents functions.

   Allocate X68kKbdPriv dynamically to make it really private.

   DEVICE_OFF and DEVICE_CLOSE operations are adjusted accordingly.
   x68kGetKbdType() function is also added to get keyboard map type
   specified in the config file.

   Allocate X68kMousePriv dynamically to avoid static buffers.

   DEVICE_OFF and DEVICE_CLOSE operations are also adjusted.

   Reduce references to x68kKbdPriv and x68kMousePriv for readability.

   Refactor X68k input device handling to remove SIGIO based event processing.

   The keyboard and pointer input events are now processed directly
   using fd event notifications registered via DIX SetNotifyFd(),
   instead of the legacy SIGIO-based asynchronous I/O.

   Use consistent name for DeviceIntPtr variables among keyboard and mouse.

   Drop myself as maintainer from devel/fossil

   pkg-vulnerabilities: add nextcloud* CVEs

   Add old and new php-nextcloud and nextcloud-client vulnerabilities.

wip/sagittarius: update to sagittarius-0.9.13

v0.9.13
=======

From this release, we move the official repository to GitHub.
Fixed bugs:

  * Issue: #297: Error during serialisation of JWK if the config
                 contains x5c.
  * Issue: #298: JWE encryption with HMAC raises an error.
  * Fixing PKCS1-v1.5-EME encoding, which provided invalid PS.
  * Fixing PKCS1 v1.5 decoding to check validity of PS.
  * Fixing (rfc jwe).
  * Fixing SegFault when passing invalid window bits to zlib APIs.
  * Fixing MAC address retrieval on Linux
           (it was returning #vu8(0 0 0 0 0 0)).
  * Fixing generating DSA key pair. It occasionally generated g=0.
  * Issue: #301: Incorrect argument number check on variadic FFI

    [28 lines not shown]

   doc: Updated www/py-urllib3 to 2.5.0

   py-urllib3: update to 2.5.0.

   Security fix release.

   Features

       Added support for the compression.zstd module that is new in
       Python 3.14. See PEP 784 for more information. (#3610)

       Added support for version 0.5 of hatch-vcs (#3612)

   Bugfixes

       Fixed a security issue where restricting the maximum number of
       followed redirects at the urllib3.PoolManager level via the
       retries parameter did not work.

       Made the Node.js runtime respect redirect parameters such as
       retries and redirects.

    [7 lines not shown]

   pkg-vulnerabilities: add gpac vulnerabilities

   Add old gpac vulnerabilities.

   CVE-2024-24265, CVE-2024-24266 and CVE-2024-24267 are probably not fixed and
   unclear if reported upstream or not.

   CVE-2024-6061, CVE-2024-6062, CVE-2024-6064, CVE-2024-6063, CVE-2024-50664,
   CVE-2024-50665 and CVE-2025-25723 are fixed upstream but no stable release
   contains fixes.

TODO: - jjui, done

jjui: update to 0.8.11.

    🎉 Added support for handling selected revisions (space) to
    rebase. For example, you can select one revision from each
    branch and get into rebase mode, set the source to be branch
    (b), and then move the cursor to main, hit enter. This will
    move all branches onto main.

    🎉 Added support for handling selected revisions to squash.
    Select multiple revisions and start squash (S) and move the
    cursor to the destination revisions and hit enter. This will
    squash all selected revisions into the destination revision.

    Fixed visual glitch when the revision messages included CJK
    encoding. #130

    Allow quit to be bound to the same key with cancel. #127 #116
    Updated colours of git, bookmarks, custom commands windows to
    use Magenta. Previously these windows used bubbletea's default

    [17 lines not shown]

   pkg-vulnerabilities: add 2015 CVEs

   + php-composer, miniupnp{c,d}, bitcoin

   pkg-vulnerabilities: add gtkwave old CVEs

   pkg-vulnerabilities: Add 2025 moodle CVEs

   pkg-vulnerabilities: Add old Moodle CVEs

   Add old pre-2025 Moodle CVEs.

   All the wildcard present do not contain further information from
   upstream and are likely not fixed.

TODO: + jjui-0.8.11.

   doc/TODO: add some

   + abseil-20250512.1, enchant2-2.8.10, gopls-0.19.1, grafana-12.0.2,
     nghttp2-1.66.0, ninja-build-1.13.0, p5-IO-Socket-SSL-2.094,
     p5-Specio-0.51, py-cachetools-6.1.0, py-codestyle-2.14.0,
     py-flake8-7.3.0, py-flakes-3.4.0, py-google-api-python-client-2.173.0,
     py-jaraco.functools-4.2.1, py-lsprotocol-2025.0.0, py-markdown-3.8.2,
     py-multidict-6.5.0, py-numpy-2.3.1, py-oauthlib-3.3.1,
     py-pygments-2.19.2, py-ruff-0.12.0, py-smartypants-2.0.2,
     py-textual-3.5.0, py-urllib3-2.5.0, rspamd-3.12.1.

   CVE-2025-6141: Add fix ncurses version info

   doc: Updated devel/ncurses to 6.5nb1

   ncurses: Cherry picked fix for CVE-2025-6141

   geography/py-gdal: +atomic64.mk

   Add atomic64.mk, already present in gdal-lib, because shadow bulk
   build on i386 shows atomic ops failure.  No change expected on
   platforms that naturally have 64-bit atomic ops; build tested on
   NetBSD 10 amd64.

rust18{6,7}: Apply workaround for pkgsrc LLVM on NetBSD/i386 9.x too.

Mirrors commit from main pkgsrc.

   lang/rust: The issue with using pkgsrc LLVM 19 on 9.x extends to i386.

   The error message encountered is

   error: failed to parse bitcode for LTO module: Invalid alignment value (Producer: 'LLVM19.1.7' Reader: 'LLVM 19.1.7')

   as part of the "Building stage1 library artifacts (i586-unknown-netbsd)"
   phase of the rust compiler build.

   Bumping GCC_REQD to >= 10 works around this (undiagnosed) problem.